Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

windows 2003 server vulnerabilities and exploits

(subscribe to this query)
7.5
CVSSv2
CVE-2003-0660
The Authenticode capability in Microsoft Windows NT through Server 2003 does not prompt the user to download and install ActiveX controls when the system is low on memory, which could allow remote malicious users to execute arbitrary code without user approval.
Microsoft Windows 2000Microsoft Windows 2003 Server StandardMicrosoft Windows 2003 Server WebMicrosoft Windows Nt 4.0Microsoft Windows XpMicrosoft Windows 2003 Server EnterpriseMicrosoft Windows 2003 Server Enterprise 64-bitMicrosoft Windows 2003 Server R2
7.5
CVSSv2
CVE-2003-0352
Buffer overflow in a certain DCOM interface for RPC in Microsoft Windows NT 4.0, 2000, XP, and Server 2003 allows remote malicious users to execute arbitrary code via a malformed message, as exploited by the Blaster/MSblast/LovSAN and Nachi/Welchia worms.
Microsoft Windows 2000Microsoft Windows 2003 Server WebMicrosoft Windows Nt 4.0Microsoft Windows 2003 Server R2Microsoft Windows 2003 Server StandardMicrosoft Windows XpMicrosoft Windows 2003 Server Enterprise 64-bitMicrosoft Windows 2003 Server Enterprise
10
CVSSv2
CVE-2003-0528
Heap-based buffer overflow in the Distributed Component Object Model (DCOM) interface in the RPCSS Service allows remote malicious users to execute arbitrary code via a malformed RPC request with a long filename parameter, a different vulnerability than CVE-2003-0352 (Blaster/Nac...
Microsoft Windows 2003 Server R2Microsoft Windows Nt 4.0Microsoft Windows 2000Microsoft Windows 2003 Server StandardMicrosoft Windows 2003 Server WebMicrosoft Windows XpMicrosoft Windows 2003 Server EnterpriseMicrosoft Windows 2003 Server Enterprise 64-bit
10
CVSSv2
CVE-2003-0715
Heap-based buffer overflow in the Distributed Component Object Model (DCOM) interface in the RPCSS Service allows remote malicious users to execute arbitrary code via a malformed DCERPC DCOM object activation request packet with modified length fields, a different vulnerability t...
Microsoft Windows 2000Microsoft Windows 2003 Server Enterprise 64-bitMicrosoft Windows 2003 Server R2Microsoft Windows Nt 4.0Microsoft Windows XpMicrosoft Windows 2003 Server EnterpriseMicrosoft Windows 2003 Server StandardMicrosoft Windows 2003 Server Web
7.5
CVSSv2
CVE-2003-0818
Multiple integer overflows in Microsoft ASN.1 library (MSASN1.DLL), as used in LSASS.EXE, CRYPT32.DLL, and other Microsoft executables and libraries on Windows NT 4.0, 2000, and XP, allow remote malicious users to execute arbitrary code via ASN.1 BER encodings with (1) very large...
Microsoft Windows 2000Microsoft Windows 2003 Server WebMicrosoft Windows Nt 4.0Microsoft Windows XpMicrosoft Windows 2003 Server Enterprise 64-bitMicrosoft Windows 2003 Server R2Microsoft Windows 2003 Server EnterpriseMicrosoft Windows 2003 Server Standard
5
CVSSv2
CVE-2004-1361
Integer underflow in winhlp32.exe in Windows NT, Windows 2000 through SP4, Windows XP through SP2, and Windows 2003 allows remote malicious users to execute arbitrary code via a malformed .hlp file, which leads to a heap-based buffer overflow.
Microsoft Windows 2000Microsoft Windows 2003 Server EnterpriseMicrosoft Windows 2003 Server Enterprise 64-bitMicrosoft Windows 2003 Server R2Microsoft Windows Nt 4.0Microsoft Windows XpMicrosoft Windows 2003 Server StandardMicrosoft Windows 2003 Server Web
7.6
CVSSv2
CVE-2005-2124
Unspecified vulnerability in the Graphics Rendering Engine (GDI32.DLL) in Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1, related to "An unchecked buffer" and possibly buffer overflows, allows remote malicious users to execute arbitrary code via a crafted Windows...
Microsoft Windows 2003 Server Sp1Microsoft Windows XpMicrosoft Windows 2003 Server 64-bitMicrosoft Windows 2003 Server ItaniumMicrosoft Windows 2003 Server R2Microsoft Windows 2000
5
CVSSv2
CVE-2005-2119
The MIDL_user_allocate function in the Microsoft Distributed Transaction Coordinator (MSDTC) proxy (MSDTCPRX.DLL) allocates a 4K page of memory regardless of the required size, which allows malicious users to overwrite arbitrary memory locations using an incorrect size value that...
Microsoft Windows XpMicrosoft Windows 2003 Server ItaniumMicrosoft Windows 2003 Server R2Microsoft Windows 2003 Server Sp1Microsoft Windows 2000Microsoft Windows 2003 Server 64-bit
7.5
CVSSv2
CVE-2006-1314
Heap-based buffer overflow in the Server Service (SRV.SYS driver) in Microsoft Windows 2000 SP4, XP SP1 and SP2, Server 2003 up to SP1, and other products, allows remote malicious users to execute arbitrary code via crafted first-class Mailslot messages that triggers memory corru...
Microsoft Windows 2003 Server ItaniumMicrosoft Windows 2003 Server R2Microsoft Windows 2003 Server Sp1Microsoft Windows XpMicrosoft Windows 2000Microsoft Windows 2003 Server 64-bit
7.8
CVSSv2
CVE-2006-3942
The server driver (srv.sys) in Microsoft Windows NT 4.0, 2000, XP, and Server 2003 allows remote malicious users to cause a denial of service (system crash) via an SMB_COM_TRANSACTION SMB message that contains a string without null character termination, which leads to a NULL der...
Microsoft Windows 2003 Server Sp1Microsoft Windows XpMicrosoft Windows 2000Microsoft Windows 2003 Server 64-bitMicrosoft Windows 2003 Server ItaniumMicrosoft Windows 2003 Server R2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32744privilege escalationCVE-2024-30253CVE-2024-3914cross-site scriptingCVE-2024-31497CVE-2024-3400CVE-2024-32341hardcoded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook